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DETAILED ACTION 

This office action has been issued in response to Amendments to the Claims, and 
Remarks filed August 21 , 2008. Claims 1-14, and 17-22 are pending, in which claims 1 , 
1 3, and 1 7 are in independent form. 
Status of Claims: 

Claims 1-14 and 17-22 are rejected under 35 U.S.C. 102(b). 
Accordingly, this action has been made FINAL. 

Response to Amendment 

Applicant's amendments to the Claims have been received and entered, in which 
claims 1-14, and 17 are amended. In light of the amendment to the Claims, the 
objection to the claims 2-12 and 14 are withdrawn. 

Response to Arguments 

Applicant's arguments filed August 21 , 2008 have been fully considered and are 
not persuasive as they relate to 35 U.S.C. 102. Applicant's argument has been 
addressed in the non-final office action and additionally is addressed below. 
Accordingly, the 35 U.S.C. 102(b) rejections to the pending claims remain and are 
shown below. 
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Claim Rejections - 35 USC § 102 

1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

2. Claims 1-14 and 17-22 rejected under 35 U.S.C. 102(b) as being anticipated by 
Van Oorshot et al U.S. Patent Number 6,229,894; Date of Patent: May 8, 2001 
hereinafter Van Oorshot. 

As to claim 1 , the following is taught: "a method for monitoring (column 2, 
lines 4-10 indicate the needs of the law enforcement agencies in the monitoring 
of communications) of communications traffic, comprising: recording packet-data 
communication traffic received from, and passing through, a network switch; 
encrypting the packet-data communication traffic to create encrypted data; and 
storing the encrypted data (Figure 1, and its description starting in column 3, line 
15 discloses the receiving, encrypting, recording, and storing of communications 
data as well as a decryption key required for its decoding) such that the 
encrypted data can be decrypted only by means of decryption keys that exhibit 
restricted availability (column 4 line 59 to column 5, line 5)." 
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As to claim 2, the following is taught: "the method as claimed in claim 1 
further including employment of a spare disk and/or CPU capacity within a 
telecommunications system (column 7, lines 17-30)." 

As to claim 3, the following is taught: "the method as claimed in claim 1 
further including the step of including encrypted search conditions within the 
decryption keys that are made selectively available (column 7, lines 43-61)." 

As to claim 4, the following is taught: "the method as claimed in claim 1 , 
further including the step of employing separate levels of authorization for access 
to the stored data (column 3, lines 1-8; column 7, lines 31-42)." 

As to claim 5, the following is taught: "the method as claimed in claim 1 , 
further including the step of employing a decryption key that is useable only once 
(column 7, line 55-57; column 8, lines 21-39, and lines 45-51)." 

As to claim 6, the following is taught: "the method as claimed in claim 1 , 
further including the step of logging (Abstract, column 1 , lines 60-67 discloses 
identity authentication of requestor) all accesses to the stored data to an 
encrypted secure audit trail (column 3, line 57 to column 4, line 5; column 5, lines 
56-65)." 
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As to claim 7, the following is taught: "the method as claimed in claim 1 , 
further including a tamper detection reference within the encrypted data (column 
4, lines 23-67)." 

As to claim 8, the following is taught: "the method as claimed in claim 1 , 
further including the step of monitoring all the available communications traffic 
(column 2, lines 4-14, disclose the problem for law enforcement agencies to 
obtain wire-tap information; column 10, lines 43-52 disclose the legal capability of 
law enforcement agencies to monitor and record unlimited information for its 
lawful and potential future scrutiny)." 

As to claim 9, the following is taught: "the method as claimed in claim 8, 
wherein the step of storing the recorded traffic comprises the step of recording all 
of the recorded traffic (column 2, lines 4-14, disclose the problem for law 
enforcement agencies to obtain wire-tap information; column 10, lines 43-52 
disclose the legal capability of law enforcement agencies to monitor and record 
unlimited information for its lawful and potential future scrutiny)." 

As to claim 10, the following is taught: "the method as claimed in claim 1 , 
wherein the communications traffic to be recorded comprises traffic through a 
telecommunications switch, router or gateway (column 3, lines 15-32; column 3, 
lines 16-39)." 
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As to claim 1 1 , the following is taught: "the method as claimed in claim 1 , 
further including the step of encrypting details relating to the communications 
traffic and storing the said encrypted details for subsequent access (Figure 2, 
and column 5, line 28 to column 8, line 6)." 

As to claim 12, the following is taught: "the method as claimed in claim 1 , 
further including the step of authorizing use of the required decryption key in a 
restricted manner (Figure 3, and column 8, lines 7-59)." 

As to claim 13, the following is taught: "a system for monitoring of 
communications traffic, comprising: 

"a recorder that records the communications traffic, the communications 
traffic being received by the recorder from a network switch; (see server 16, 
processing device 90, memory 92 of Figure 2, and column 7, lines 17-27), and" 

"a storage device that stores recorded communications traffic as 
encrypted data, such that the encrypted data can be decrypted only by means of 
keys that exhibit restricted availability (see secure storage of users' decryption 
private keys of server 16 in Figure 2, and column 7, lines 27-30; and directory 68 
(a database) of Figure 2, and column 6, lines 50-54)." 
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As to claim 14, the following is taught: "the system as claimed in claim 13 
further including application software and executes the method steps of any one 
or more of claims 2-12 (See Van Oorshot's teachings above with regards to claim 
13, and specifically with regards to claims 2-12)" 

As to claim 15: (cancelled). 

As to claim 16: (cancelled). 

As to claim 17, the following is taught: "a method for monitoring of 
communications traffic, comprising the steps of:" 

"receiving communications traffic from a network switch;" encrypting the 
communications traffic to generate encrypted communications traffic data (Figure 
1, and its description starting in column 3, line 15 discloses the receiving, 
encrypting, recording, and storing of communications data as well as a 
decryption key required for its decoding);" 

"recording the encrypted communications traffic data (see server 16, 
processing device 90, memory 92 of Figure 2, and column 7, lines 17-27); " 

"storing the recorded encrypted communications traffic data such that the 
encrypted communications traffic data can be decrypted by decryption keys that 
exhibit restricted availability, that allow encrypted search conditions and that 
employ separate levels of authorization for access to the stored data (see secure 
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storage of users' decryption private keys of server 16 in Figure 2, and column 7, 
lines 27-30; and directory 68 (a database) of Figure 2, and column 6, lines 50- 
54); and" 

"encrypting details relating to the communications traffic and storing the 
said encrypted details for subsequent access (see sending end-user 18, and 
end-user encryption certificate of end-user 60, 62, 64 in Figure 2, and column 5, 
lines 39-55)." 

As to claim 18, the following is taught: "the method as claimed in claim 17, 
further including the step of employing a decryption key that is useable only once 
(column 8, lines 21-39)." 

As to claim 19, the following is taught: "the method as claimed in claim 17, 
further including the step of logging (Abstract, column 1 , lines 60-67 discloses 
identity authentication of requestor) all accesses to the stored data to an 
encrypted secure audit trail (column 3, line 57 to column 4, line 5; column 5, lines 
56-65)." 

As to claim 20, the following is taught: "the method as claimed in claim 17, 
further including a tamper detection reference within the encrypted data (column 
4, lines 23-67)." 
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As to claim 21 , the following is taught: "the method as claimed in claim 1 7, 
further including the step of monitoring all the available communications traffic 
(column 2, lines 4-14, disclose the problem for law enforcement agencies to 
obtain wire-tap information; column 10, lines 43-52 disclose the legal capability of 
law enforcement agencies to monitor and record unlimited information for its 
lawful and potential future scrutiny)." 

As to claim 22, the following is taught: "the method as claimed in claim 17, 
wherein the step of storing the recorded traffic comprises the step of recording all 
of the recorded traffic (column 2, lines 4-14, disclose the problem for law 
enforcement agencies to obtain wire-tap information; column 10, lines 43-52 
disclose the legal capability of law enforcement agencies to monitor and record 
unlimited information for its lawful and potential future scrutiny)." 

Conclusion 

3. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. Lenstra et al, U.S. Patent Number 5,633,928 Date of Patent: May 
27, 1997; Bentley et al, U.S. Patent Number 5,914,951 Date of Patent: June 22, 1999; 
Kim et al, U.S. Patent Number 5,930,335 Date of Patent: July 27, 1999; Aldenhuijsen et 
al U.S. Patent Number 6,347,373 Date of Patent: Feb. 12, 2002; and Gundlach et al, 
U.S. Patent 6,418,208 Date of Patent: July 9, 2002. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Stephen Sanders whose telephone number is 
571-270-5308. The examiner can normally be reached on M - F; 7:30a.m. - 5:00p.m.. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kambiz Zand can be reached on 571-272-381 1 . The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Stephen Sanders/ 
Examiner, Art Unit 2139 

/Kambiz Zand/ 

Supervisory Patent Examiner, Art Unit 2434 



